baronissi.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:45:a8:e2:6e:6c:3c:00:ae:cd:29:47:4b:b0:9e:72:57:8b was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=baronissi.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:45:a8:e2:6e:6c:3c:00:ae:cd:29:47:4b:b0:9e:72:57:8bSerial Number (int): 285040827114847656535826334680840940967819
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ee:b5:ef:b5:1d:7f:0f:18:87:46:fa:81:bf:31:83:68:9b:76:f2:e3
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a7:fb:a8:7f:fd:82:ea:b4:c0:6f:a8:d5:25:99:47:16:1f:7f:c3:a9
Fingerprint (sha256): 0c:d3:43:79:96:76:b6:1a:27:05:60:a5:88:d1:23:ef:e3:52:c5:8f:31:8f:a9:cc:65:e7:52:13:85:09:75:23
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate baronissi.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for baronissi.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
baronissi.org
Other certificates including the domain name baronissi.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for baronissi.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA0Wo4m5sPACuzSlHS7CecleLMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MzAxOTQwMDdaFw0x OTEyMjkxOTQwMDdaMBgxFjAUBgNVBAMTDWJhcm9uaXNzaS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDhM75uUYuAuS5e3EFCNzQDDpsk17Vj3sgO hI/Omm+NzD3g6dIPbu2cjMl7U+0XVwEl8CyxsMukIV7rHCKe15+ipZ0NXJTREAEX 4Il3TIkm0cJH9AIle5XM8/aWhKyi+rAJSBNyJOD2bWdPRYNZXSGnLlHYJZpNWgIs lV38VS67BSfXs2bO2Wce4b2gAmspeNmR61dj3Zl0rJvZ5FyYuPFq4vn3bVFH0mm2 wVT9AHhZedlEZImdY8HqPrmXu8G2QdLRMspS3F/E6/hQPVEmpPogOIkdhhPT1Dvx QrK6NiSEWDorqYewOvoxLeaM25Z4Tm58Ylb0Q35Ptk45aQfTqpvwNfjnG+mKUZCc cqi1pNxae/93I0VKvLUstqrws096MCEhDNASOqE1HzEuYB2lLH7iObZt0J2u/x5I 4kyiWEQjXZFypFpldDU3+vc2M/msPal2ZLWL5XCx7hyoMDCho47NHTQe1q0bYDo4 /7PnkJDJMQg+vru4bgdOuPOwA1FuUXX/Nrp0DGjgrqrNPQSgjkSs0gmyETuFN8/5 eFEPOP3XilxQTgpNDVl3EGoCqGDRvN63NQbxZRI9s35OM4OoMcm01gwVkP6DPhMw x+H8L+J3jjyPAiFmHUUzalvpbopZ5OF2RNBy8qltZ+X8oQM5EG0g1k8hU/ggRBit YtUJRNUs2QIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTute+1 HX8PGIdG+oG/MYNom3by4zAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDWJhcm9uaXNzaS5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdQBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAW2D5tjaAAAE AwBGMEQCIG4rHLZ5Ba/eAP/rcIEDqlx9gPckmJsN9nbWQeNv+V/3AiBQVC76YqgS ftiRi9UjQkOsBhjcdJ63y2gr7e5RZNIJigB3AOJpS64m6OlACeiGG7Y7g9Q+5/50 iPukjyiTAZ3d8dv+AAABbYPm2tgAAAQDAEgwRgIhANoPWXhQfRCQpSvSWSGGoow7 Apu3e5IIsAQz59Z12mrAAiEA8YYWomtdQy3xR7Ad2fsS719WcVLPDMNp0NMvT8Sl 3GIwDQYJKoZIhvcNAQELBQADggEBAJAf3TfGWP9+VU64O/8TwfqqbAOnSPQdq8gX xny3SzNZNgY07B/wQm1Le3+UMUinxPIt9Pmwy4s6wjEJ4XpeTsZq3HvRQpncKy1V 96E5DyQOjDRzlKZNdbaIprnvhXcxeFSUPuN6OU+Ue3pxLgs2fJ9uWIUAh3ccfHjY AHjLf7AIbKV9aS7TO4u+Lbh6mZTpmyyiuctoJ9wMIeaww3Xp1isPff+BteT3Mi9U YQLZZ5Iwd7ninKDgFoKoTx6Dpvlp2x7k4yTvVsxsO3nJv9LztaZsgy2PLaSKvErv loUWlfHO8xVIVZE9PeoWFtmz3HZXL4kLCIro8VeDvaVas3RZUMQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4TO+blGLgLkuXtxBQjc0 Aw6bJNe1Y97IDoSPzppvjcw94OnSD27tnIzJe1PtF1cBJfAssbDLpCFe6xwintef oqWdDVyU0RABF+CJd0yJJtHCR/QCJXuVzPP2loSsovqwCUgTciTg9m1nT0WDWV0h py5R2CWaTVoCLJVd/FUuuwUn17NmztlnHuG9oAJrKXjZketXY92ZdKyb2eRcmLjx auL5921RR9JptsFU/QB4WXnZRGSJnWPB6j65l7vBtkHS0TLKUtxfxOv4UD1RJqT6 IDiJHYYT09Q78UKyujYkhFg6K6mHsDr6MS3mjNuWeE5ufGJW9EN+T7ZOOWkH06qb 8DX45xvpilGQnHKotaTcWnv/dyNFSry1LLaq8LNPejAhIQzQEjqhNR8xLmAdpSx+ 4jm2bdCdrv8eSOJMolhEI12RcqRaZXQ1N/r3NjP5rD2pdmS1i+Vwse4cqDAwoaOO zR00HtatG2A6OP+z55CQyTEIPr67uG4HTrjzsANRblF1/za6dAxo4K6qzT0EoI5E rNIJshE7hTfP+XhRDzj914pcUE4KTQ1ZdxBqAqhg0bzetzUG8WUSPbN+TjODqDHJ tNYMFZD+gz4TMMfh/C/id448jwIhZh1FM2pb6W6KWeThdkTQcvKpbWfl/KEDORBt INZPIVP4IEQYrWLVCUTVLNkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 285040827114847656535826334680840940967819 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-30 19:40:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-29 19:40:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'baronissi.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 918744511303266089828695001502309073166281076106832515920580615538662026912383161733141649862291796358541794460641865844479973129061372967653533745405473039859114816243318057031688010691900270333311161844925180010819942160371110967435543735460481370205943589387523789124973887331779140777404081883795684201867045752725510344973963183823750806336029300014366161912523626140368281735425797884892721713668009170562133279929278566987921330484550238197873937458848271460386638539405921057392813858155759599384156558638497675327234365393010578753483835507117656305534030969589507739015655323272288214720391567748959290714012868298215864993098278398554511303843658824608907177306077971812122174435237960658266048203899888994378447845208065691001987425661821938102521267025298346752080274332439098679723172313341080285538798112862679926298731128897341731569825006570484574891576863143395404049786706226315984165740967499262504066198062175846091793334601564586870084610122443519233649773925850488351962890738253846044241068548991682704183682843231446538833245022417215260519038586866914496888192459663976591053299576773682384338686013125978069555119090550541826044519938870148651825129941215987271005509572615747400721963777482991483867180249 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eeb5efb51d7f0f188746fa81bf3183689b76f2e3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baronissi.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d83e6d8da000004030046304402206e2b1cb67905afde00ffeb708103aa5c7d80f724989b0df676d641e36ff95ff7022050542efa62a8127ed8918bd5234243ac0618dc749eb7cb682bedee5164d2098a007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d83e6dad80000040300483046022100da0f5978507d1090a52bd2592186a28c3b029bb77b9208b00433e7d675da6ac0022100f18616a26b5d432df147b01dd9fb12ef5f567152cf0cc369d0d32f4fc4a5dc62 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00901fdd37c658ff7e554eb83bff13c1faaa6c03a748f41dabc817c67cb74b3359360634ec1ff0426d4b7b7f943148a7c4f22df4f9b0cb8b3ac23109e17a5e4ec66adc7bd14299dc2b2d55f7a1390f240e8c347394a64d75b688a6b9ef8577317854943ee37a394f947b7a712e0b367c9f6e58850087771c7c78d80078cb7fb0086ca57d692ed33b8bbe2db87a9994e99b2ca2b9cb6827dc0c21e6b0c375e9d62b0f7dff81b5e4f7322f546102d967923077b9e29ca0e01682a84f1e83a6f969db1ee4e324ef56cc6c3b79c9bfd2f3b5a66c832d8f2da48abc4aef96851695f1cef3154855913d3dea1616d9b3dc76572f890b088ae8f15783bda55ab3745950c4